From owner-svn-doc-all@FreeBSD.ORG Wed Aug 27 00:08:33 2014 Return-Path: Delivered-To: svn-doc-all@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 56C05AF5; Wed, 27 Aug 2014 00:08:33 +0000 (UTC) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:1900:2254:2068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 3E39634B5; Wed, 27 Aug 2014 00:08:33 +0000 (UTC) Received: from svn.freebsd.org ([127.0.1.70]) by svn.freebsd.org (8.14.9/8.14.9) with ESMTP id s7R08XgU001909; Wed, 27 Aug 2014 00:08:33 GMT (envelope-from gjb@FreeBSD.org) Received: (from gjb@localhost) by svn.freebsd.org (8.14.9/8.14.9/Submit) id s7R08XTv001908; Wed, 27 Aug 2014 00:08:33 GMT (envelope-from gjb@FreeBSD.org) Message-Id: <201408270008.s7R08XTv001908@svn.freebsd.org> X-Authentication-Warning: svn.freebsd.org: gjb set sender to gjb@FreeBSD.org using -f From: Glen Barber Date: Wed, 27 Aug 2014 00:08:33 +0000 (UTC) To: doc-committers@freebsd.org, svn-doc-all@freebsd.org, svn-doc-head@freebsd.org Subject: svn commit: r45526 - head/en_US.ISO8859-1/htdocs/releases/10.0R X-SVN-Group: doc-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-doc-all@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "SVN commit messages for the entire doc trees \(except for " user" , " projects" , and " translations" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Aug 2014 00:08:33 -0000 Author: gjb Date: Wed Aug 27 00:08:32 2014 New Revision: 45526 URL: http://svnweb.freebsd.org/changeset/doc/45526 Log: Regen after r270686 Approved by: re (implicit) Sponsored by: The FreeBSD Foundation Modified: head/en_US.ISO8859-1/htdocs/releases/10.0R/errata.html Modified: head/en_US.ISO8859-1/htdocs/releases/10.0R/errata.html ============================================================================== --- head/en_US.ISO8859-1/htdocs/releases/10.0R/errata.html Tue Aug 26 23:32:10 2014 (r45525) +++ head/en_US.ISO8859-1/htdocs/releases/10.0R/errata.html Wed Aug 27 00:08:32 2014 (r45526) @@ -1,5 +1,6 @@ -FreeBSD 10.0-RELEASE Errata

FreeBSD 10.0-RELEASE Errata

The FreeBSD Project

Copyright © 2014 The FreeBSD Documentation Project

FreeBSD is a registered trademark of +FreeBSD 10.0-RELEASE Errata

FreeBSD 10.0-RELEASE Errata

The FreeBSD Project

Copyright © 2014 The FreeBSD Documentation + Project

FreeBSD is a registered trademark of the FreeBSD Foundation.

Intel, Celeron, EtherExpress, i386, i486, Itanium, Pentium, and Xeon are trademarks or registered trademarks of Intel Corporation or its subsidiaries in the United @@ -12,32 +13,28 @@ as trademarks. Where those designations appear in this document, and the FreeBSD Project was aware of the trademark claim, the designations have been followed by the or the - ® symbol.

Last modified on 2014-08-26 by gjb.
Abstract

This document lists errata items for FreeBSD 10.0-RELEASE, - containing significant information discovered after the release - or too late in the release cycle to be otherwise included in the - release documentation. - This information includes security advisories, as well as news - relating to the software or documentation that could affect its - operation or usability. An up-to-date version of this document - should always be consulted before installing this version of - FreeBSD.

This errata document for FreeBSD 10.0-RELEASE - will be maintained until the release of FreeBSD 10.1-RELEASE.

Table of Contents
1. Introduction
2. Security Advisories
3. Open Issues
4. Late-Breaking News

1. Introduction

This errata document contains late-breaking news - about FreeBSD 10.0-RELEASE - Before installing this version, it is important to consult this - document to learn about any post-release discoveries or problems - that may already have been found and fixed.

Any version of this errata document actually distributed + ® symbol.

Last modified on 2014-08-27 by gjb.
Abstract

This document lists errata items for FreeBSD 10.0-RELEASE, + containing significant information discovered after the + release or too late in the release cycle to be otherwise + included in the release documentation. This information + includes security advisories, as well as news relating to the + software or documentation that could affect its operation or + usability. An up-to-date version of this document should + always be consulted before installing this version of + FreeBSD.

This errata document for FreeBSD 10.0-RELEASE will be + maintained until the release of FreeBSD 10.1-RELEASE.

Table of Contents
1. Introduction
2. Security Advisories
3. Open Issues
4. Late-Breaking News

1. Introduction

This errata document contains late-breaking + news about FreeBSD 10.0-RELEASE Before installing this + version, it is important to consult this document to learn about + any post-release discoveries or problems that may already have + been found and fixed.

Any version of this errata document actually distributed with the release (for example, on a CDROM distribution) will be out of date by definition, but other copies are kept updated on the Internet and should be consulted as the current - errata for this release. These other copies of the - errata are located at - http://www.FreeBSD.org/releases/, - plus any sites - which keep up-to-date mirrors of this location.

Source and binary snapshots of FreeBSD 10.0-STABLE also + errata” for this release. These other copies of the + errata are located at http://www.FreeBSD.org/releases/, plus any + sites which keep up-to-date mirrors of this location.

Source and binary snapshots of FreeBSD 10.0-STABLE also contain up-to-date copies of this document (as of the time of - the snapshot).

For a list of all FreeBSD CERT security advisories, see - http://www.FreeBSD.org/security/ - or ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/.

2. Security Advisories

AdvisoryDateTopic
SA-13:14.openssh19 November 2013

OpenSSH AES-GCM memory corruption + the snapshot).

For a list of all FreeBSD CERT security advisories, see http://www.FreeBSD.org/security/ or ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/.

2. Security Advisories

AdvisoryDateTopic
SA-13:14.openssh19 November 2013

OpenSSH AES-GCM memory corruption vulnerability

SA-14:01.bsnmpd14 January 2014

bsnmpd remote denial of service vulnerability

SA-14:02.ntpd14 January 2014

ntpd distributed reflection Denial of Service vulnerability

SA-14:03.openssl14 January 2014

OpenSSL multiple vulnerabilities

SA-14:04.bind< /a>14 January 2014

BIND remote denial of service vulnerability

SA-14:05.nfsserver8 April 2014

Deadlock in the NFS server

SA-14:06.openssl8 April 2014

OpenSSL multiple vulnerabilities

SA-14:07.devfs30 April 2014

Fix devfs rules not applied by default for jails

SA-14:08.tcp30 April 2014

Fix TCP reassembly vulnerability

SA-14:09.openssl30 April 2014

Fix OpenSSL use-after-free @@ -53,13 +50,13 @@ specific version of VirtualBox or host operating system.

It causes various errors and makes FreeBSD quite unstable. Although the cause is still unclear, disabling unmapped I/O - works as a workaround. To disable it, choose Escape to - loader prompt in the boot menu and enter the following - lines from loader(8) prompt, after - an OK: 

set vfs.unmapped_buf_allowed=0
+	  works as a workaround.  To disable it, choose
+	  Escape to loader prompt in the boot menu
+	  and enter the following lines from loader(8) prompt,
+	  after an OK: 
set vfs.unmapped_buf_allowed=0
 boot
Note that the following line has to be added to
-	  /boot/loader.conf after a boot.
-          It disables unmapped I/O at every boot: 
vfs.unmapped_buf_allowed=0
[2014-04-03 update]  It has been reported that
+	  /boot/loader.conf after a boot.  It
+	  disables unmapped I/O at every boot: 
vfs.unmapped_buf_allowed=0
[2014-04-03 update]  It has been reported that
 	  instability may be present on virtual machines running
 	  on other hypervisors, such as Xen or KVM. 
  • A bug in Heimdal (an
 	  implementation of Kerberos
@@ -84,7 +81,8 @@ boot

    • -tso parameter of ifconfig(8). It can - be specified in rc.conf(5) like the following: 

    ifconfig_bxe0="DHCP -tso"

    This bug has been fixed on FreeBSD 10.0-STABLE.

  • Due to a minor incompatibility with pkg(7) version + be specified in rc.conf(5) like the following: 

    ifconfig_bxe0="DHCP -tso"

    This bug has been fixed on FreeBSD + 10.0-STABLE.

  • Due to a minor incompatibility with pkg(7) version 1.2.x, bsdconfig(8) will duplicate the list of available packages for installation. This is due to the PACKAGESITE environment @@ -100,7 +98,7 @@ boot

    The mount_udf(8) utility has a bug which prevents it from mounting any UDF file system. This has been fixed - in FreeBSD-CURRENT and FreeBSD 10.0-STABLE.

  • Updating LSI firmware on mps(4) controllers with + in FreeBSD-CURRENT and FreeBSD 10.0-STABLE.

  • Updating LSI firmware on mps(4) controllers with the sas2flash utility may cause the system to hang, or may cause the system to panic. This is fixed in the stable/10 branch with